Service Configuration
Deianira may be configured by adding the appropriate section under the Authentication Providers configuration section.
The following example assumes the private keys and certificates are placed in the root of the checkout.
The IdP’s metadata should similarly be added as metadata under options. This file was downloaded as part of setting up the IdP in the [previous step].
Multiple IdPs are supported, each having a unique id with a description. Ensure the algorithm, digest_algorithm and aspects match up with how the IdP has been set up. The metadata_url was obtained whilst setting up the IdP in the [previous step].
Refer to the configuration classes for more detailed information.
authentication:
# other details/providers omitted
providers:
- id: jumpcloudsaml
description: JumpCloud SAML
enabled: true
options:
strategy: saml
issuer: https://uat.asterias.io
metadata_source: url
metadata_url: https://sso.jumpcloud.com/saml2/metadata/abcdef
signing:
algorithm: sha256
digest_algorithm: sha256
aspects: authn_response
key: ./saml-sign.key
certificate: ./saml-sign.crt
decryption:
enabled: true
key: ./saml-decrypt.key
certificate: ./saml-decrypt.crt